Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
Security Privacy

All Santander Staff and 30 Million Customers In Spain, Chile and Uruguay Hacked (bbc.com) 10

An anonymous reader quotes a report from the BBC: Hackers are attempting to sell what they say is confidential information belonging to millions of Santander staff and customers. They belong to the same gang which this week claimed to have hacked Ticketmaster. The bank -- which employs 200,000 people worldwide, including around 20,000 in the UK -- has confirmed data has been stolen. Santander has apologized for what it says is "the concern this will understandably cause" adding it is "proactively contacting affected customers and employees directly."

"Following an investigation, we have now confirmed that certain information relating to customers of Santander Chile, Spain and Uruguay, as well as all current and some former Santander employees of the group had been accessed," it said in a statement posted earlier this month. "No transactional data, nor any credentials that would allow transactions to take place on accounts are contained in the database, including online banking details and passwords." It said its banking systems were unaffected so customers could continue to "transact securely."

In a post on a hacking forum -- first spotted by researchers at Dark Web Informer- the group calling themselves ShinyHunters posted an advert saying they had data including: 30 million people's bank account details, 6 million account numbers and balances, 28 million credit card numbers, and HR information for staff. Santander has not commented on the accuracy of those claims.

This discussion has been archived. No new comments can be posted.

All Santander Staff and 30 Million Customers In Spain, Chile and Uruguay Hacked

Comments Filter:
  • Not really. Some of their data, albeit sensitive financial data, has been exposed due to a breach at their bank.

    Details matter.

  • and they deserve it. 0 investment in IT infrastructure or personal. Everyone is external, no internal hires, the internals are dinosaurs which only care about doing nothing and keeping their jobs.
  • by ArchieBunker ( 132337 ) on Friday May 31, 2024 @05:29PM (#64514275)

    Santander is apparently a bank.

    • by znrt ( 2424692 )

      santander is actually a city, capital of cantabria.

      "banco santander" is a bank, and not a small one. it's bigger than deutsche bank which you surely know, and aprox the size of goldman sachs (or even bigger, depending on criteria). yeah, spain lags behind by most standards but we do have fat elites. not by coincidence i would guess.

      • santander is actually a city, capital of cantabria.

        "banco santander" is a bank, and not a small one. it's bigger than deutsche bank which you surely know, and aprox the size of goldman sachs

        I think his point was that it would have been nice for the Slashdot editor to say "Banco Santander" in the title, instead of just "Santander".

      • by mjwx ( 966435 )

        santander is actually a city, capital of cantabria.

        "banco santander" is a bank, and not a small one. it's bigger than deutsche bank which you surely know, and aprox the size of goldman sachs (or even bigger, depending on criteria). yeah, spain lags behind by most standards but we do have fat elites. not by coincidence i would guess.

        Just to add to the confusion,

        Santander is also a departmento (state) of Colombia, the largest city is Bucaramanga.

        To be fair to our American cousins, I wouldn't expect most Europeans to know who Groupo Exito are either (South American supermarket conglomerate) or Macquarie (Australian Bank). Foreign brands rarely come up in casual conversation.

        I'm a customer of Santander [Bank] UK, quite glad we have a different computer system.

  • Hacks that involve hackers obtaining data from institutions are becoming so common that it's no longer about hoping that an institution that you have a relationship isn't compromised; it's now about ensuring that you aren't negatively affected by the impact.

    Other than [1] monitoring your credit; [2] changing your passwords, or using MFA; [3] being hyper aware of phishing attempts that use information about you, is there really anything else one can do?

  • I actually read the article. Someone got login credentials at a cloud provider and did an "unauthorized login".
    Without being too specific, it seems that it was limited in geographical scope and that the information was not to do with core banking functions.

    You would suspect an inside job. Wouldn't you?
  • I'm potentially one of the affected customers here in Spain. I'll see how long it takes them to contact me. Customer service is apalling and fees would make the Mafia blush. I'm told by locals here in Barcelona that all Spanish banks are bad, so there's no alternative.

Avoid strange women and temporary variables.

Working...